<?php

include ("addition/role.php");

class NEWSController extends Controller {

    /**
     * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
     * using two-column layout. See 'protected/views/layouts/column2.php'.
     */
    public $layout = '//layouts/column2';

    /**
     * @return array action filters
     */
    public function filters() {
        return array(
            'accessControl', // perform access control for CRUD operations
        );
    }

    /**
     * Specifies the access control rules.
     * This method is used by the 'accessControl' filter.
     * @return array access control rules
     */
    public function accessRules() {
        $role = new role();
        $haveRole = $role->getRoleAll();
        return array(
            array('allow', // allow all users to perform 'index' and 'view' actions
                'actions' => array('index', 'view'),
                'users' => array('*'),
            ),
            array('allow', // allow authenticated user to perform 'create' and 'update' actions
                'actions' => array('create', 'update'),
                'users' => array('@'),
            ),
            array('allow', // allow admin user to perform 'admin' and 'delete' actions
                'actions' => array('admin', 'delete'),
                'expression' => $haveRole,
            ),
            array('deny', // deny all users
                'users' => array('*'),
            ),
        );
    }

    /**
     * Displays a particular model.
     * @param integer $id the ID of the model to be displayed
     */
    public function actionView($id) {
        $this->render('view', array(
            'model' => $this->loadModel($id),
        ));
    }

    /**
     * Creates a new model.
     * If creation is successful, the browser will be redirected to the 'view' page.
     */
    public function actionCreate() {
        $model = new NEWS;
        $folderUpload = hash('sha512', "news" . base64_decode(Yii::app()->user->school));
        if (!is_dir(Yii::getPathOfAlias('webroot') . '/file/' . $folderUpload)) {
            mkdir(Yii::getPathOfAlias('webroot') . '/file/' . $folderUpload);
            chmod(Yii::getPathOfAlias('webroot') . '/file/' . $folderUpload, 0755);
        }
        $files = CUploadedFile::getInstancesByName('NEWS[image_new]');
        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);

        if (isset($_POST['NEWS'])) {

            if (isset($files) && count($files) > 0) {

                foreach ($files as $file => $pic) {
                    $fileName = hash('sha512', ($pic->name));
                    $type = explode('/', $pic->type);
                    $i = 0;
                    while (true) {
                        if (count(NEWS::model()->findByAttributes(array('image_new' => $fileName . "." . $type[1]))) > 0) {
                            $fileName = hash('sha512', ($pic->name . "$i"));
                        } else {
                            break;
                        }
                        $i++;
                    }
                    if ($pic->saveAs(Yii::getPathOfAlias('webroot') . '/file/' . $folderUpload . '/' . $fileName . "." . $type[1])) {
                       
                        $model['image_new'] = $fileName . "." . $type[1];
                        $model['new'] = $_POST['NEWS']['new'];
                        $model['summary'] = $_POST['NEWS']['summary'];
                         
                        if ($model->save()){
                            $this->redirect(array('admin'));
                            
                        }
                        
                    }
                }
            }
        }
        else {
            $this->render('create', array(
                'model' => $model,
            ));
        }
    }

    /**
     * Updates a particular model.
     * If update is successful, the browser will be redirected to the 'view' page.
     * @param integer $id the ID of the model to be updated
     */
    public function actionUpdate($id) {
        $model = $this->loadModel($id);

        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);

        if (isset($_POST['NEWS'])) {
            $model->attributes = $_POST['NEWS'];
            if ($model->save())
                $this->redirect(array('view', 'id' => $model->id_news));
        }

        $this->render('update', array(
            'model' => $model,
        ));
    }

    /**
     * Deletes a particular model.
     * If deletion is successful, the browser will be redirected to the 'admin' page.
     * @param integer $id the ID of the model to be deleted
     */
    public function actionDelete($id) {
        if (Yii::app()->request->isPostRequest) {
            // we only allow deletion via POST request
            $this->loadModel($id)->delete();

            // if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
            if (!isset($_GET['ajax']))
                $this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
        }
        else
            throw new CHttpException(400, 'Invalid request. Please do not repeat this request again.');
    }

    /**
     * Lists all models.
     */
    public function actionIndex() {
        $criteria = new CDbCriteria;
        $criteria->select = "*";
        $criteria->condition = "owner=:owner";
        $criteria->params = array(":owner" => '1');
        $model = NEWS::model()->findAll($criteria);
        $this->render('index', array(
            'model' => $model,
        ));
    }

    /**
     * Manages all models.
     */
    public function actionAdmin() {
        $model = new NEWS('search');
        $model->unsetAttributes();  // clear any default values
        if (isset($_GET['NEWS']))
            $model->attributes = $_GET['NEWS'];

        $this->render('admin', array(
            'model' => $model,
        ));
    }

    /**
     * Returns the data model based on the primary key given in the GET variable.
     * If the data model is not found, an HTTP exception will be raised.
     * @param integer the ID of the model to be loaded
     */
    public function loadModel($id) {
        $model = NEWS::model()->findByPk($id);
        if ($model === null)
            throw new CHttpException(404, 'The requested page does not exist.');
        return $model;
    }

    /**
     * Performs the AJAX validation.
     * @param CModel the model to be validated
     */
    protected function performAjaxValidation($model) {
        if (isset($_POST['ajax']) && $_POST['ajax'] === 'news-form') {
            echo CActiveForm::validate($model);
            Yii::app()->end();
        }
    }

}
